Status Tracking Note TRTA06-132B

Apple QuickTime Vulnerabilities

Overview

Apple QuickTime contains multiple vulnerabilities. Exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.
Event Information

Date (UTC)Description
2006-05-12 21:21 US-CERT
TA06-132B: Apple QuickTime Vulnerabilities
Via US-CERT Mailing List
2006-05-12 16:39 McAfee Avert Labs
Apple QuickDraw/QuickTime Multiple Vulnerabilities
Via Bugtraq Mailing List
2006-05-11 22:16 Apple
Article ID: 303752: About the security content of the QuickTime 7.1 Update
2006-05-11 Apple
Download ID: sd9374: Apple - Support - Downloads - QuickTime 7.1
2006-05-06 India & US Nevis Labs
Apple QuickTime udta ATOM Heap Overflow
Vendor notified via product-security@apple.com
2006-03-20 Zero Day Initiative (ZDI)
ZDI-06-015: Apple QuickTime H.264 Parsing Heap Overflow Vulnerability
Vulnerability reported to vendor (CVE-2006-1463)
2006-03-07 eEye Digital Security
AD20060511: Apple QuickTime FPX Integer Overflow
Reported (CVE-2006-1249)


Date first published (UTC): 2006-05-13T08:14+00:00
Date last updated (UTC): 2006-05-13T08:14+00:00